$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa File: 80051317-81e4-416b-892a-affc2e301f81.roa (raw, json) Hash identifier: F4bt+7UUOQCLNTbCIc4mh0XxNa2jAlw69MuUtYt15ns= Subject key identifier: E7:A2:EA:30:1F:D1:19:A8:5F:F9:65:45:F9:31:28:3E:23:63:5A:8D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 45B03E2C706B68FC5F2F4AE749F335E987D26EBA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa Signing time: Mon 19 May 2025 15:10:04 +0000 ROA not before: Mon 19 May 2025 15:10:04 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:b0:3e:2c:70:6b:68:fc:5f:2f:4a:e7:49:f3:35:e9:87:d2:6e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 19 15:10:04 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=52dd96c8a896e32545406753d0a58fc1b5b496067b14a3cf2b8cad1c392b73ce, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:c1:58:f8:76:a1:0b:12:71:82:8f:8a:a0: d4:c4:fc:37:a7:75:c4:aa:02:28:55:e0:46:41:18: 61:ba:a7:f0:de:29:12:8f:08:4c:32:dd:60:0e:62: f2:b6:6c:d9:db:54:2b:9a:8b:0b:aa:c0:f9:67:73: c6:3c:89:e5:27:63:8c:06:b1:56:b9:89:0e:02:4e: b7:02:75:c2:f9:be:0d:f9:c4:2c:99:46:80:0a:c3: 50:e7:d2:2f:62:93:9d:db:ac:8b:42:3a:f7:f7:24: db:b9:89:a9:19:a9:5b:87:4d:4d:b1:12:b8:cb:e4: f8:f6:14:40:f4:b3:13:82:03:ae:b1:01:9a:b3:39: 2f:4a:bb:1e:11:a5:f4:e8:93:d3:0c:45:9f:a9:db: fd:b2:52:74:8a:b1:ca:c1:31:da:f8:5e:64:c9:2a: a3:79:3e:12:1e:64:07:f9:4f:81:81:87:a6:13:5f: ec:7b:79:49:7b:68:e4:5e:e3:0c:1f:3e:61:5a:8d: 94:21:fd:d2:9e:e7:e8:33:a0:5b:26:f6:cd:2f:46: 89:0d:5a:4b:15:3c:26:ff:c5:b4:5a:b2:69:da:df: ef:00:85:a3:a2:ce:dc:81:b2:7e:5a:8d:32:80:ba: 06:db:d4:78:47:ea:63:89:ca:c3:56:7b:9e:5b:2e: 2c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A2:EA:30:1F:D1:19:A8:5F:F9:65:45:F9:31:28:3E:23:63:5A:8D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.178.0/23 Signature Algorithm: sha256WithRSAEncryption 71:c7:bb:1d:29:73:c0:dc:b2:2d:09:48:df:e2:87:5e:63:e9: 97:73:f2:8c:3a:d6:06:78:52:a9:b9:cc:84:aa:8c:e3:db:d3: 6d:9a:88:c5:d6:e8:94:ed:1d:8d:b9:ae:07:64:8a:42:04:59: 0e:47:47:d5:10:56:59:0c:1f:73:2f:51:af:d3:26:19:0c:27: 21:0e:c6:0f:85:ba:1f:84:33:59:92:9a:31:16:25:a5:51:cd: 04:f9:08:d6:a7:15:25:be:02:c5:3e:a2:cb:11:76:cb:ba:d0: d8:de:96:59:79:bd:99:eb:f7:79:9c:7f:95:cb:12:0b:91:9b: cc:1a:72:0e:84:53:2c:08:4d:8f:2b:d8:ff:4a:36:ed:15:17: 18:e2:a1:32:34:96:36:77:bb:11:b0:a1:87:78:2a:24:dd:25: d1:db:fa:cc:a3:dc:c7:e4:68:24:27:69:4b:43:82:22:11:c2: c0:cf:5b:7d:ef:13:48:9b:5c:74:a7:2f:05:a0:97:15:1d:7a: cc:51:b0:13:77:2f:8e:04:e7:3b:3a:77:f9:26:8a:db:85:dd: f0:1d:6e:1e:14:92:69:7a:99:b3:08:c5:e0:a2:11:4b:83:59: 27:20:98:15:eb:95:54:9e:1d:2e:74:94:ce:8f:27:25:ab:b4: c0:43:af:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURbA+LHBraPxfL0rnSfM16YfSbrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTE5MTUxMDA0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmRkOTZjOGE4OTZlMzI1NDU0MDY3NTNkMGE1OGZjMWI1 YjQ5NjA2N2IxNGEzY2YyYjhjYWQxYzM5MmI3M2NlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHPcFY+HahCxJxgo+KoNTE/DendcSqAihV4EZBGGG6p/De KRKPCEwy3WAOYvK2bNnbVCuaiwuqwPlnc8Y8ieUnY4wGsVa5iQ4CTrcCdcL5vg35 xCyZRoAKw1Dn0i9ik53brItCOvf3JNu5iakZqVuHTU2xErjL5Pj2FED0sxOCA66x AZqzOS9Kux4RpfTok9MMRZ+p2/2yUnSKscrBMdr4XmTJKqN5PhIeZAf5T4GBh6YT X+x7eUl7aORe4wwfPmFajZQh/dKe5+gzoFsm9s0vRokNWksVPCb/xbRasmna3+8A haOiztyBsn5ajTKAugbb1HhH6mOJysNWe55bLiz/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU56LqMB/RGahf+WVF+TEoPiNjWo0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzgwMDUxMzE3LTgxZTQtNDE2Yi04OTJhLWFmZmMyZTMwMWY4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM37IwDQYJKoZIhvcNAQELBQADggEBAHHHux0pc8Dcsi0JSN/ih15j6Zdz 8ow61gZ4Uqm5zISqjOPb022aiMXW6JTtHY25rgdkikIEWQ5HR9UQVlkMH3MvUa/T JhkMJyEOxg+Fuh+EM1mSmjEWJaVRzQT5CNanFSW+AsU+ossRdsu60Njelll5vZnr 93mcf5XLEguRm8wacg6EUywITY8r2P9KNu0VFxjioTI0ljZ3uxGwoYd4KiTdJdHb +syj3MfkaCQnaUtDgiIRwsDPW33vE0ibXHSnLwWglxUdesxRsBN3L44E5zs6d/km ituF3fAdbh4Ukml6mbMIxeCiEUuDWScgmBXrlVSeHS50lM6PJyWrtMBDrxk= -----END CERTIFICATE-----Generated at Sat Jun 7 12:31:46 2025 by rpki-client